|
|
55175e5957
|
geary: fix that it was failing to connect
|
2024-08-21 06:06:10 +00:00 |
|
|
|
2758b0eae2
|
signal-desktop: DO start by default: until/unless i get signal-flare working, hosts which are capable should launch signal-desktop at boot
|
2024-08-21 03:30:16 +00:00 |
|
|
|
17dcf566f7
|
loupe: add /dev/dri to the sandbox for faster rendering
|
2024-08-20 08:52:24 +00:00 |
|
|
|
ddffda1594
|
nixpkgs: 0-unstable-2024-08-13 -> 0-unstable-2024-08-18
|
2024-08-19 13:49:32 +00:00 |
|
|
|
aecbfb45c9
|
gnome-calls: dont fail offline indefinitely when DNS errors
|
2024-08-18 14:24:11 +00:00 |
|
|
|
391c4f5aac
|
geary: change the default autostart to true
|
2024-08-17 12:13:15 +00:00 |
|
|
|
08d6f9c761
|
dconf: sandbox out-of-place
|
2024-08-16 02:48:24 +00:00 |
|
|
|
05bc5923cf
|
sway: sandbox out-of-place
|
2024-08-16 02:48:24 +00:00 |
|
|
|
114b37928a
|
tor-browser: sandbox out-of-place
|
2024-08-16 02:44:27 +00:00 |
|
|
|
729d2a9809
|
firefox: dont use inplace wrapper
avoiding inplace wrapping gives me more leverage over what gets linked into the final runtime environment
|
2024-08-16 02:16:37 +00:00 |
|
|
|
62ebdf5de4
|
brave: fix sandboxing
|
2024-08-16 00:15:58 +00:00 |
|
|
|
f834f551ed
|
assorted: clarify why i use wrapperType = inplace when sandboxing
|
2024-08-15 21:01:42 +00:00 |
|
|
|
140b61a944
|
slic3r: ship
|
2024-08-15 10:32:22 +00:00 |
|
|
|
db7767c679
|
assorted: remove some no-longer-needed sandbox.wrapperType = "inplace" declarations
|
2024-08-15 10:32:22 +00:00 |
|
|
|
60a4eb0bde
|
gnome-calls: associate with tel:, sip:, sips: URIs
|
2024-08-14 08:27:27 +00:00 |
|
|
|
a96e83f4e1
|
doc: gnome-calls: document some UI elements
|
2024-08-14 07:53:47 +00:00 |
|
|
|
e245164da3
|
nixpkgs-wayland: 2024-08-12 -> 2024-08-13
|
2024-08-13 22:01:31 +00:00 |
|
|
|
db39dc209f
|
xdg-desktop-portal-gnome: sandbox
|
2024-08-13 03:34:09 +00:00 |
|
|
|
77a753b0d6
|
gnome-maps: todo: better portal integration
|
2024-08-13 02:50:59 +00:00 |
|
|
|
144afd8171
|
sway: fix wlroots drmSync bug via upstream patch
|
2024-08-12 21:52:44 +00:00 |
|
|
|
7827f6c584
|
sway: note that the activation patch is still necessary
|
2024-08-12 18:28:16 +00:00 |
|
|
|
e1899495a0
|
nixpkgs-wayland: 0-unstable-2024-08-06 -> 0-unstable-2024-08-12
|
2024-08-12 18:05:32 +00:00 |
|
|
|
a56ad56a4f
|
refactor: move ~/.cache/nix persistence to hosts/common/programs/nix.nix
|
2024-08-12 16:06:26 +00:00 |
|
|
|
da551b8b97
|
geary: grant access to more files
|
2024-08-12 16:04:20 +00:00 |
|
|
|
ca412d08bd
|
nautilus: grant access to more files
|
2024-08-12 16:04:11 +00:00 |
|
|
|
74acfeadd5
|
programs/assorted: clarify sandbox.enable = false situation
|
2024-08-12 10:27:41 +00:00 |
|
|
|
e7d5a61014
|
libcap: split into separate capsh and captree programs, and sandbox the latter
|
2024-08-12 10:13:50 +00:00 |
|
|
|
fc826a3503
|
libcap: patch in captree locally rather than via a nixpkgs patch that would force mass rebuilds
|
2024-08-12 09:39:43 +00:00 |
|
|
|
119afcf393
|
firefox: remove open-in-mpv (obsoleted by firefox-xdg-open)
|
2024-08-11 22:37:12 +00:00 |
|
|
|
d3d970eb3e
|
firefox: dont require approval to open xdg-open: URIs
|
2024-08-11 22:32:26 +00:00 |
|
|
|
c0d5004926
|
firefox: add a right-click context menu to open any URI with the system handler
it still prompts the user to allow it, but i'll fix that later i guess
|
2024-08-11 22:26:23 +00:00 |
|
|
|
d9a876e49a
|
fractal: association with https://matrix.to links
|
2024-08-11 21:45:51 +00:00 |
|
|
|
f0b0d15ad7
|
evtest: ship
|
2024-08-11 06:26:58 +00:00 |
|
|
|
a2f34be9d6
|
avahi: fix so the dbus policy files get installed system wide, again
|
2024-08-10 02:59:20 +00:00 |
|
|
|
bda172bc2d
|
avahi: harden systemd service
N.B.: i haven't tested this on moby yet (which advertizes the gps-share service) nor on servo (which maybe uses it for jellyfin, idk)
|
2024-08-10 02:04:57 +00:00 |
|
|
|
a91a2d8a7f
|
gps-share: fix sandboxing
|
2024-08-10 01:10:31 +00:00 |
|
|
|
039ffcdcd4
|
newsflash: sandbox
|
2024-08-09 21:35:33 +00:00 |
|
|
|
2a35cb5379
|
mime.urlAssociations: clarify regexes by using $ terminator
|
2024-08-09 20:57:13 +00:00 |
|
|
|
3db009bc98
|
mpv: associate with all web audio/video resources
|
2024-08-09 20:55:00 +00:00 |
|
|
|
cbe71868ef
|
newsflash: deploy
|
2024-08-09 10:25:53 +00:00 |
|
|
|
1d205a89bc
|
sway: fix gnome-calls to always be on workspace 1
|
2024-08-08 23:59:19 +00:00 |
|
|
|
5ff643aa2f
|
foliate: fix sandboxing
|
2024-08-08 23:58:02 +00:00 |
|
|
|
bfdf63e641
|
calls: 46.3 -> 47.0-beta
|
2024-08-08 23:57:47 +00:00 |
|
|
|
c695f7a979
|
foliate: ship
|
2024-08-08 21:08:51 +00:00 |
|
|
|
1ee81db537
|
switch xdg-desktop-portal-gtk -> xdg-desktop-portal-gnome
the gnome file chooser is far more responsive, on moby
though thumbnailing doesnt work, which may degrade the desktop experience :-(
|
2024-08-08 09:43:47 +00:00 |
|
|
|
2de6491583
|
xdg-desktop-portal-gnome: get working as a xdp backend, on lappy
probably needs some porting to moby before it works there
|
2024-08-08 08:52:24 +00:00 |
|
|
|
4525df58e0
|
rsyslog: disable
|
2024-08-08 07:40:59 +00:00 |
|
|
|
de6ffe6b75
|
flare-signal: update compatibility notes
|
2024-08-07 22:07:56 +00:00 |
|
|
|
f8aea34e96
|
sanebox: bwrap: make user namespace unsharing more obvious
|
2024-08-07 21:23:21 +00:00 |
|
|
|
49efb94a0a
|
seatd: restrict capabilities
|
2024-08-07 20:30:29 +00:00 |
|
